221.150.17.44 - IPInfo

Basic Info

City: Gwangmyeong

Region: Gyeonggi-do

Country: South Korea

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
221.150.17.93	attack	$f2bV_matches	2020-03-04 23:33:49
221.150.17.93	attackbots	Sep 25 06:06:56 sshgateway sshd\[12040\]: Invalid user openfire from 221.150.17.93 Sep 25 06:06:56 sshgateway sshd\[12040\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.150.17.93 Sep 25 06:06:59 sshgateway sshd\[12040\]: Failed password for invalid user openfire from 221.150.17.93 port 41434 ssh2	2019-09-25 14:53:37
221.150.17.93	attackspam	Sep 14 19:49:14 lcprod sshd\[16843\]: Invalid user wxl from 221.150.17.93 Sep 14 19:49:14 lcprod sshd\[16843\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.150.17.93 Sep 14 19:49:16 lcprod sshd\[16843\]: Failed password for invalid user wxl from 221.150.17.93 port 49040 ssh2 Sep 14 19:54:14 lcprod sshd\[17274\]: Invalid user lili from 221.150.17.93 Sep 14 19:54:14 lcprod sshd\[17274\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.150.17.93	2019-09-15 14:06:12
221.150.17.93	attack	Sep 3 03:11:27 eventyay sshd[14310]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.150.17.93 Sep 3 03:11:28 eventyay sshd[14310]: Failed password for invalid user disk from 221.150.17.93 port 42352 ssh2 Sep 3 03:16:19 eventyay sshd[14388]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.150.17.93 ...	2019-09-03 09:27:08
221.150.17.93	attack	Sep 2 21:30:25 dedicated sshd[7459]: Invalid user changeme from 221.150.17.93 port 37082	2019-09-03 03:51:47
221.150.17.93	attackspambots	$f2bV_matches_ltvn	2019-09-02 01:18:56
221.150.17.93	attack	leo_www	2019-08-31 00:19:30
221.150.17.93	attackbots	2019-08-22T04:53:04.014233wiz-ks3 sshd[31149]: Invalid user shit from 221.150.17.93 port 41650 2019-08-22T04:53:04.016358wiz-ks3 sshd[31149]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.150.17.93 2019-08-22T04:53:04.014233wiz-ks3 sshd[31149]: Invalid user shit from 221.150.17.93 port 41650 2019-08-22T04:53:06.462304wiz-ks3 sshd[31149]: Failed password for invalid user shit from 221.150.17.93 port 41650 ssh2 2019-08-22T04:58:55.918734wiz-ks3 sshd[31190]: Invalid user admin from 221.150.17.93 port 56946 2019-08-22T04:58:55.920798wiz-ks3 sshd[31190]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.150.17.93 2019-08-22T04:58:55.918734wiz-ks3 sshd[31190]: Invalid user admin from 221.150.17.93 port 56946 2019-08-22T04:58:57.885172wiz-ks3 sshd[31190]: Failed password for invalid user admin from 221.150.17.93 port 56946 ssh2 2019-08-22T05:05:17.053704wiz-ks3 sshd[31256]: pam_unix(sshd:auth): authentication failure; logname= ui	2019-08-29 10:18:16
221.150.17.93	attackbotsspam	Aug 17 17:59:53 herz-der-gamer sshd[29105]: Invalid user postgres from 221.150.17.93 port 51746 Aug 17 17:59:53 herz-der-gamer sshd[29105]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.150.17.93 Aug 17 17:59:53 herz-der-gamer sshd[29105]: Invalid user postgres from 221.150.17.93 port 51746 Aug 17 17:59:54 herz-der-gamer sshd[29105]: Failed password for invalid user postgres from 221.150.17.93 port 51746 ssh2 ...	2019-08-18 00:30:51
221.150.17.93	attackbots	Invalid user www from 221.150.17.93 port 51230	2019-08-16 22:56:11
221.150.17.93	attack	Aug 12 20:58:14 server01 sshd\[13241\]: Invalid user www from 221.150.17.93 Aug 12 20:58:14 server01 sshd\[13241\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.150.17.93 Aug 12 20:58:16 server01 sshd\[13241\]: Failed password for invalid user www from 221.150.17.93 port 37012 ssh2 ...	2019-08-13 02:18:46
221.150.17.93	attackspambots	Aug 9 15:07:10 pornomens sshd\[7550\]: Invalid user cata from 221.150.17.93 port 60036 Aug 9 15:07:10 pornomens sshd\[7550\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.150.17.93 Aug 9 15:07:12 pornomens sshd\[7550\]: Failed password for invalid user cata from 221.150.17.93 port 60036 ssh2 ...	2019-08-09 22:07:09
221.150.17.93	attackbotsspam	Aug 8 23:54:29 [host] sshd[10646]: Invalid user nice from 221.150.17.93 Aug 8 23:54:29 [host] sshd[10646]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.150.17.93 Aug 8 23:54:31 [host] sshd[10646]: Failed password for invalid user nice from 221.150.17.93 port 46656 ssh2	2019-08-09 07:32:58
221.150.17.93	attackspam	Jul 24 13:43:24 mail sshd\[2967\]: Invalid user sistema from 221.150.17.93 port 50948 Jul 24 13:43:24 mail sshd\[2967\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.150.17.93 Jul 24 13:43:26 mail sshd\[2967\]: Failed password for invalid user sistema from 221.150.17.93 port 50948 ssh2 Jul 24 13:48:54 mail sshd\[3876\]: Invalid user ts3 from 221.150.17.93 port 46508 Jul 24 13:48:54 mail sshd\[3876\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.150.17.93	2019-07-24 19:50:26
221.150.17.93	attackspam	Jul 24 05:11:22 mail sshd\[16792\]: Invalid user princess from 221.150.17.93 port 40600 Jul 24 05:11:22 mail sshd\[16792\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.150.17.93 Jul 24 05:11:25 mail sshd\[16792\]: Failed password for invalid user princess from 221.150.17.93 port 40600 ssh2 Jul 24 05:16:50 mail sshd\[17521\]: Invalid user kubernetes from 221.150.17.93 port 36152 Jul 24 05:16:50 mail sshd\[17521\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.150.17.93	2019-07-24 11:29:34

Whois info:

query : 221.150.17.44


# KOREAN(UTF8)

조회하신 IPv4주소는 한국인터넷진흥원으로부터 아래의 관리대행자에게 할당되었으며, 할당 정보는 다음과 같습니다.

[ 네트워크 할당 정보 ]
IPv4주소           : 221.144.0.0 - 221.159.255.255 (/12)
기관명             : 주식회사 케이티
서비스명           : KORNET
주소               : 경기도 성남시 분당구 불정로 90
우편번호           : 13606
할당일자           : 20030418

이름               : IP주소 담당자
전화번호           : +82-2-500-6630
전자우편           : kornet_ip@kt.com

조회하신 IPv4주소는 위의 관리대행자로부터 아래의 사용자에게 할당되었으며, 할당 정보는 다음과 같습니다.
--------------------------------------------------------------------------------


[ 네트워크 할당 정보 ]
IPv4주소           : 221.150.17.0 - 221.150.17.255 (/24)
기관명             : (주) 케이티
네트워크 구분      : CUSTOMER
주소               : 경기도 성남시 분당구 불정로 90
우편번호           : 13606
할당내역 등록일    : 20191205

이름               : IP주소 담당자
전화번호           : +82-2-500-6630
전자우편           : kornet_ip@kt.com


# ENGLISH

KRNIC is not an ISP but a National Internet Registry similar to APNIC.

[ Network Information ]
IPv4 Address       : 221.144.0.0 - 221.159.255.255 (/12)
Organization Name  : Korea Telecom
Service Name       : KORNET
Address            : Gyeonggi-do Bundang-gu, Seongnam-si Buljeong-ro 90
Zip Code           : 13606
Registration Date  : 20030418

Name               : IP Manager
Phone              : +82-2-500-6630
E-Mail             : kornet_ip@kt.com

--------------------------------------------------------------------------------

More specific assignment information is as follows.

[ Network Information ]
IPv4 Address       : 221.150.17.0 - 221.150.17.255 (/24)
Organization Name  : Korea Telecom
Network Type       : CUSTOMER
Address            : 90 Buljeongro  Bundang-Gu Seongnam-Si Gyeonggi-Do
Zip Code           : 13606
Registration Date  : 20191205

Name               : IP Manager
Phone              : +82-2-500-6630
E-Mail             : kornet_ip@kt.com


- KISA/KRNIC WHOIS Service -

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 221.150.17.44
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21044
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;221.150.17.44.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2026062100 1800 900 604800 86400

;; Query time: 9 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jun 21 15:46:37 CST 2026
;; MSG SIZE  rcvd: 106

Host info

Host 44.17.150.221.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 44.17.150.221.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
220.134.190.50	attackspambots	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-09-18 18:27:04
185.86.164.99	attack	CMS (WordPress or Joomla) login attempt.	2020-09-18 18:43:57
195.54.160.180	attackbotsspam	Sep 18 10:36:43 plex-server sshd[1356151]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.54.160.180 Sep 18 10:36:43 plex-server sshd[1356151]: Invalid user rj1tn3tw0rks from 195.54.160.180 port 1144 Sep 18 10:36:45 plex-server sshd[1356151]: Failed password for invalid user rj1tn3tw0rks from 195.54.160.180 port 1144 ssh2 Sep 18 10:36:46 plex-server sshd[1356171]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.54.160.180 user=root Sep 18 10:36:48 plex-server sshd[1356171]: Failed password for root from 195.54.160.180 port 7607 ssh2 ...	2020-09-18 18:38:06
187.85.209.172	attack	Sep 17 18:04:23 mail.srvfarm.net postfix/smtps/smtpd[140753]: warning: unknown[187.85.209.172]: SASL PLAIN authentication failed: Sep 17 18:04:23 mail.srvfarm.net postfix/smtps/smtpd[140753]: lost connection after AUTH from unknown[187.85.209.172] Sep 17 18:04:39 mail.srvfarm.net postfix/smtpd[137454]: warning: unknown[187.85.209.172]: SASL PLAIN authentication failed: Sep 17 18:04:40 mail.srvfarm.net postfix/smtpd[137454]: lost connection after AUTH from unknown[187.85.209.172] Sep 17 18:10:56 mail.srvfarm.net postfix/smtpd[143209]: warning: unknown[187.85.209.172]: SASL PLAIN authentication failed:	2020-09-18 18:08:14
31.170.51.217	attack	Sep 17 18:05:44 mail.srvfarm.net postfix/smtpd[143201]: warning: unknown[31.170.51.217]: SASL PLAIN authentication failed: Sep 17 18:05:44 mail.srvfarm.net postfix/smtpd[143201]: lost connection after AUTH from unknown[31.170.51.217] Sep 17 18:12:02 mail.srvfarm.net postfix/smtps/smtpd[155679]: warning: unknown[31.170.51.217]: SASL PLAIN authentication failed: Sep 17 18:12:02 mail.srvfarm.net postfix/smtps/smtpd[155679]: lost connection after AUTH from unknown[31.170.51.217] Sep 17 18:12:44 mail.srvfarm.net postfix/smtps/smtpd[140755]: warning: unknown[31.170.51.217]: SASL PLAIN authentication failed:	2020-09-18 18:17:11
182.253.66.194	attackbots	Auto Detect Rule! proto TCP (SYN), 182.253.66.194:44585->gjan.info:23, len 40	2020-09-18 18:27:57
159.65.136.141	attackspambots	(sshd) Failed SSH login from 159.65.136.141 (SG/Singapore/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 18 02:53:45 server sshd[5846]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.136.141 user=root Sep 18 02:53:47 server sshd[5846]: Failed password for root from 159.65.136.141 port 39760 ssh2 Sep 18 02:59:06 server sshd[9357]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.136.141 user=root Sep 18 02:59:08 server sshd[9357]: Failed password for root from 159.65.136.141 port 38620 ssh2 Sep 18 03:01:20 server sshd[11158]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.136.141 user=root	2020-09-18 18:19:36
188.35.187.50	attackspam	Sep 18 09:24:54 scw-focused-cartwright sshd[19985]: Failed password for root from 188.35.187.50 port 48086 ssh2	2020-09-18 18:47:30
198.245.61.43	attack	198.245.61.43 - - [18/Sep/2020:11:43:41 +0200] "GET /wp-login.php HTTP/1.1" 200 8558 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 198.245.61.43 - - [18/Sep/2020:11:43:43 +0200] "POST /wp-login.php HTTP/1.1" 200 8809 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 198.245.61.43 - - [18/Sep/2020:11:43:44 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-09-18 18:43:33
62.210.194.7	attack	Sep 17 18:10:23 mail.srvfarm.net postfix/smtpd[156675]: lost connection after STARTTLS from r7.news.eu.rvca.com[62.210.194.7] Sep 17 18:11:34 mail.srvfarm.net postfix/smtpd[156676]: lost connection after STARTTLS from r7.news.eu.rvca.com[62.210.194.7] Sep 17 18:15:14 mail.srvfarm.net postfix/smtpd[143218]: lost connection after STARTTLS from r7.news.eu.rvca.com[62.210.194.7] Sep 17 18:17:54 mail.srvfarm.net postfix/smtpd[143218]: lost connection after STARTTLS from r7.news.eu.rvca.com[62.210.194.7] Sep 17 18:18:17 mail.srvfarm.net postfix/smtpd[143208]: lost connection after STARTTLS from r7.news.eu.rvca.com[62.210.194.7]	2020-09-18 18:14:51
185.191.171.1	attack	log:/meteo/4362197	2020-09-18 18:22:46
162.241.222.41	attack	162.241.222.41 (US/United States/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 18 07:38:39 server sshd[9954]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.194.222.82 user=root Sep 18 07:54:15 server sshd[12053]: Failed password for root from 187.190.109.142 port 35486 ssh2 Sep 18 07:55:06 server sshd[12195]: Failed password for root from 162.241.222.41 port 55520 ssh2 Sep 18 07:55:04 server sshd[12195]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.241.222.41 user=root Sep 18 08:01:38 server sshd[13048]: Failed password for root from 213.32.23.54 port 39352 ssh2 IP Addresses Blocked: 42.194.222.82 (CN/China/-) 187.190.109.142 (MX/Mexico/-)	2020-09-18 18:42:06
194.61.27.246	attackbots	firewall-block, port(s): 3389/tcp	2020-09-18 18:33:31
136.61.209.73	attack	2020-09-17T17:49:02.510687shield sshd\[5206\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=136.61.209.73 user=root 2020-09-17T17:49:05.023889shield sshd\[5206\]: Failed password for root from 136.61.209.73 port 32806 ssh2 2020-09-17T17:51:15.130814shield sshd\[5502\]: Invalid user postgres from 136.61.209.73 port 39346 2020-09-17T17:51:15.146072shield sshd\[5502\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=136.61.209.73 2020-09-17T17:51:16.912753shield sshd\[5502\]: Failed password for invalid user postgres from 136.61.209.73 port 39346 ssh2	2020-09-18 18:29:11
61.188.18.141	attackbotsspam	Sep 18 11:19:01 rocket sshd[25516]: Failed password for root from 61.188.18.141 port 45861 ssh2 Sep 18 11:26:17 rocket sshd[26591]: Failed password for root from 61.188.18.141 port 53160 ssh2 ...	2020-09-18 18:38:49

Recently Reported IPs

2606:4700:10::6814:8495	2606:4700:10::ac43:1673	38.84.200.1	108.181.3.221
66.80.100.243	122.192.203.67	80.87.206.229	216.180.246.10
118.193.78.251	168.158.162.1	169.214.170.6	91.230.168.121
154.64.240.225	163.227.2.0	5.255.98.183	14.29.237.56
92.204.172.19	20.169.106.57	2606:4700:10::ac43:2613	192.168.31.197